Upgrade to Pro
— share decks privately, control downloads, hide ads and more …
Speaker Deck
Features
Speaker Deck
PRO
Sign in
Sign up for free
Search
Search
2000day in Safari
Search
Bo0oM
May 21, 2019
2
2.2k
2000day in Safari
Bo0oM
May 21, 2019
Tweet
Share
More Decks by Bo0oM
See All by Bo0oM
Защита от вредоносной автоматизации сегодня
bo0om
0
520
Defending against automatization using nginx
bo0om
0
790
Antibot pitch deck
bo0om
0
120
31337
bo0om
0
130
Your back is white
bo0om
0
310
FTP2RCE
bo0om
1
7.3k
Interpret it!
bo0om
0
1.1k
At Home Among Strangers
bo0om
1
3.8k
Partyhack 3.0 - Telegram bugbounty writeup
bo0om
0
4k
Featured
See All Featured
Fantastic passwords and where to find them - at NoRuKo
philnash
51
3k
Building Adaptive Systems
keathley
40
2.4k
Git: the NoSQL Database
bkeepers
PRO
427
64k
Code Reviewing Like a Champion
maltzj
521
39k
Java REST API Framework Comparison - PWX 2021
mraible
28
8.4k
Optimising Largest Contentful Paint
csswizardry
34
3.1k
The Psychology of Web Performance [Beyond Tellerrand 2023]
tammyeverts
46
2.3k
Helping Users Find Their Own Way: Creating Modern Search Experiences
danielanewman
29
2.4k
Designing for humans not robots
tammielis
250
25k
Templates, Plugins, & Blocks: Oh My! Creating the theme that thinks of everything
marktimemedia
30
2.2k
Large-scale JavaScript Application Architecture
addyosmani
511
110k
Navigating Team Friction
lara
183
15k
Transcript
2000-day in Safari Anton Lopanitsyn @i_bo0om
phdays.com #PHDays XSS https://portswigger.net/web-security/cross-site-scripting
phdays.com #PHDays UXSS https://evil.com https://victim.com
phdays.com #PHDays Save as webpage, complete
phdays.com #PHDays chrome://flags
phdays.com #PHDays MHTML
phdays.com #PHDays MHTML
phdays.com #PHDays
phdays.com #PHDays Safari save as webarchive
phdays.com #PHDays Signed webarchive
phdays.com #PHDays Plaintext webarchive
phdays.com #PHDays Plaintext webarchive <script> … </script>
phdays.com #PHDays Plaintext webarchive
phdays.com #PHDays
phdays.com #PHDays https://blog.rapid7.com/2013/04/25/abusing-safaris-webarchive-file-format/
phdays.com #PHDays
phdays.com #PHDays
phdays.com #PHDays
phdays.com #PHDays
phdays.com #PHDays
phdays.com #PHDays xhtml
phdays.com #PHDays xhtml
phdays.com #PHDays file:///Users/bo0om/Library/Containers/com.apple.mail/Data/Library/Mail%20 Downloads/2F4D2013-CCBF-4341-B05E-CEB4B76F30CE/Document.xhtm file:///Users/bo0om/Downloads/33h0ygug3ulny0gvwhh3d.webarchive
phdays.com #PHDays
phdays.com #PHDays file:///Users/bo0om/Library/Containers/com.apple.mail/Data/Downloads/x.webarchive file:///Users/bo0om/Library/Containers/com.apple.mail/Downloads/x.webarchive file:///Users/bo0om/Library/Containers/Downloads/x.webarchive file:///Users/bo0om/Library/Downloads/x.webarchive file:///Users/bo0om/Downloads/x.webarchive
phdays.com #PHDays DEMO https://github.com/Bo0oM/Safari2000day)
Thank you!
bo0om
philnash
keathley
bkeepers
maltzj
mraible
csswizardry
tammyeverts
danielanewman
tammielis
marktimemedia
addyosmani
lara
